Threat process test

I really enjoyed looking at the latest threats from DISA this past few days and determining that the greatest threat now are threats from Iran. It seems that Iran is launching some cyber attacks on us that is trying to steal credit card information and things like that so it was a fact that I could run it through my process model.  I was making sure that I was doing it right because when I wrote about the test it seemed like I was writing a description of my model again.  I pretty much just plugged in the information from a potential attack and was able to talk about all key players as the threat processed through the system.  I all went pretty smoothly for me because I was able to follow the flow the entire time and it did not get bogged down.  All of the potential problems worked through and it is all logical that it would happen this way.  In my process model their is only so much that you and your unit support can do any way. DISA is pretty much all of the guidance once a clear threat and attack has been announced.  Your security section has to report what your model finds directly to DISA and they can only recommend any changes to DISA.  DISA will determine if any sites or access has to be changed on this.  Your security section ultimately acts on the guidance from DISA and that is how it works.  Pretty much I would say that my threat process model worked for this particular threat worked and it makes sense. I hope the class enjoys reading it on the forum this week.